Discussion in 'malware problems & news' started by ronjor, Mar 31, 2016.
Ransomware Profile: Egregor
Ransomware Profile: NetWalker
The Week in Ransomware - March 5th 2021 - Targeting service providers
March 5, 2021
The Week in Ransomware - March 12th 2021 - Encrypting Exchange servers
March 12, 2021
Ransomware statistics for 2020: Year in summary
The Week in Ransomware - March 19th 2021 - Highest ransom ever!
March 19, 2021
This article is worth a "full read." If your PC suddenly reboots to Safe mode and you're presented with the Win logon screen; assuming you have that configured, immediately power down your PC.
FBI exposes weakness in Mamba ransomware, DiskCryptor.
The Week in Ransomware - March 26th 2021 - Attacks increase
"Ziggy Ransomware Gang Offers Refunds to Victims
The Ziggy ransomware gang announced in early February they were getting out of the cybercrime business. Now they say they’re ready to refund their victims’ money.
Anyone who paid a ransom to Ziggy just needs to shoot them an email with proof of payment calculated in Bitcoin and the computer ID. After that, the money will be returned to the Bitcoin wallet in about two weeks...
Apparently, Ziggy was scared straight in early February after law-enforcement takedowns of fellow purveyors of malware like Emotet and the NetWalker ransomware; and added that they were feeling guilty..."
"Hacked companies are paying off ransomware gangs, the criminals are reinvesting the profits in making bigger and bolder attacks, and there's no end in sight...
Gangs, many located in Russia, and using their loot to invest in AI and other tools to be more effective...
Whether the payments come via insurers or from the companies themselves, they are funding advancements for the gangs. 'They're investing in the development of automation tools' ... using machine learning to find and exploit holes in organizations' defenses. It used to take gangs weeks to seize organizations' data and demand a ransom, the analyst said. Now it can be done in hours..."
Windows XP makes ransomware gangs work harder for their money.
REvil ransomware now changes password to auto-login in Safe Mode
The Week in Ransomware - April 9th 2021 - Massive ransom demands
Dutch supermarkets run out of cheese after ransomware attack
PSA: Severe bug in Babuk ransomware decryptor leads to data loss
"Ransomware Gang Strikes The NBA Houston Rockets
Screenshots...indicate that the attackers claim to have stolen 500 gigabytes of data during the breach...
The ransomware used in the attack, Babuk, is not considered to be especially sophisticated. It is, however, still quite dangerous. Babuk has been unleashed against a variety of targets in the healthcare sector, as well as manufacturers and logistics companies...
Files stolen during the attack appear to include player contracts, non-disclosure agreements, personnel information and other financial data. In the ransom note left behind, the attackers note that the data 'could lead to legal problems and cause concern for customers' if published..."
The Week in Ransomware - April 16th 2021 - The Houston Rockets
April 16, 2021
Ryuk ransomware operation updates hacking techniques
April 17, 2021
Discord Nitro gift codes now demanded as ransomware payments
April 18, 2021
Ransomware gang tries to extort Apple hours ahead of Spring Loaded Event
"Ransomware targeted by the new Department of Justice Task Force
The Department of Justice has formed a task force to curb the proliferation of ransomware cyberattacks, targeting the entire digital ecosystem that supports popular blackmail schemes to make them less profitable...
According to the Memorandum of Understanding, the Task Force will identify ransomware as a priority to increase training, allocate more resources to problems, improve intelligence sharing across departments, and 'connect criminals with the nation-state.'
This memo covers the criminal ecosystem surrounding ransomware, including prosecution, interruption of ongoing attacks, and suppression of services that support attacks, such as online forums promoting ransomware sales and hosting services that promote ransomware campaigns...
The Task Force consists of the Department of Justice’s Criminal, National Security, Civil Affairs, Federal Bureau of Investigation, and the US Public Prosecutor’s Office..."
Massive Qlocker ransomware attack uses 7zip to encrypt QNAP devices
Stanford student finds glitch in ransomware payment system to save victims $27,000
Separate names with a comma.